I have started from the unreleased master branch of poise-javascript (rake chef:build). That includes a change that supports the new behavior of npm install, writing "up to date" to stdout when no changes have been performed.
The repo doesn't contain example config files anymore, you install velero with the install command now: https://velero.io/docs/v1.0.0/gcp-config/#install-and-start-velero
I have also deleted the heptio-ark namespace and the matching service account and IAM. Closing this one
I ended up switching to Velero 1.0 (Ark got renamed at version 0.11) using the new installation process that's part of the velero binary and using a new bucket. I could not figure out what was wrong with the current bucket. The same error was happening with velero as it did with our previous Ark setup.
You're right, I misunderstood, that would work with the cerbot systemd timer as it is (systemctl status --full certbot will contain the previous error). I'm going to close this and reopen another pull request that does it with a OnFailure section on the certbot service instead
Damnit, certbot is using stderr to output warnings, so we got an email when it ran at midnight: